$ rpki-client -vvf rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a373030303a3a2f33372d3438203d3e20323033303632.roa File: 326130623a346530373a373030303a3a2f33372d3438203d3e20323033303632.roa (raw, json) Hash identifier: zSC7njMC1qAly/q+jMSlgMyHvETRIHxtGBKneIFV9YM= Subject key identifier: 28:C1:40:A4:63:05:38:76:12:36:2E:34:0B:82:3C:C8:AF:DD:BB:EF Certificate issuer: /CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Certificate serial: 389DB93E3B3E748F7309A8B7D5B192B28059AD53 Authority key identifier: 51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a373030303a3a2f33372d3438203d3e20323033303632.roa Signing time: Fri 13 Mar 2026 19:36:57 +0000 ROA not before: Fri 13 Mar 2026 19:31:57 +0000 ROA not after: Fri 12 Mar 2027 19:36:57 +0000 asID: 203062 IP address blocks: 2a0b:4e07:7000::/37 maxlen: 48 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 07:17:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:9d:b9:3e:3b:3e:74:8f:73:09:a8:b7:d5:b1:92:b2:80:59:ad:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF Validity Not Before: Mar 13 19:31:57 2026 GMT Not After : Mar 12 19:36:57 2027 GMT Subject: CN=28C140A46305387612362E340B823CC8AFDDBBEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ac:d0:8c:92:bf:38:06:7a:d2:89:e4:64:90: a7:2c:bc:e3:f0:f1:7a:64:ae:7a:15:aa:b7:d9:ba: 31:ec:79:76:50:9d:3d:69:f9:f4:b6:fe:1d:29:28: 4c:89:31:e3:3f:32:48:1e:67:00:77:45:c1:cb:5e: d2:26:74:7b:11:ff:1d:7e:25:77:33:87:07:83:62: b2:de:19:80:b3:04:2f:e6:6d:4d:1f:04:f0:c3:be: 45:73:ba:24:bf:9f:3f:b7:19:81:79:f6:b2:94:5c: 09:7e:de:1f:0e:bf:15:3c:9f:cd:93:cc:08:be:19: b8:56:6f:2a:de:07:fe:3b:c2:52:21:e0:55:ac:cf: 34:c6:a2:bb:dd:13:dd:cb:d7:a3:3a:50:28:b6:6f: c8:03:81:b8:76:c4:6b:af:45:b7:1e:41:ca:16:9a: 59:b1:e2:2d:cd:8c:e4:d4:e8:a9:84:ce:ed:d3:05: b3:64:e9:20:9d:34:9e:78:41:35:c2:49:22:f3:00: 60:4a:57:c7:cf:9a:27:36:cb:d8:f6:39:f4:36:ef: e0:3c:d9:88:7e:4f:30:96:c9:f2:24:1c:6f:fd:de: 09:60:ea:9e:5a:e2:62:2d:f6:49:e7:9a:01:1a:16: 9a:4a:de:f0:36:f3:12:65:c3:ca:12:e7:47:dc:5b: a4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C1:40:A4:63:05:38:76:12:36:2E:34:0B:82:3C:C8:AF:DD:BB:EF X509v3 Authority Key Identifier: keyid:51:24:C3:1F:CF:A4:E8:2C:4D:0F:6E:09:A3:0A:04:A5:5C:97:78:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/326130623a346530373a373030303a3a2f33372d3438203d3e20323033303632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:7000::/37 Signature Algorithm: sha256WithRSAEncryption 99:13:37:5d:5e:18:ae:0c:da:cb:40:d7:d0:29:67:09:6b:f2: 49:23:d1:48:2d:56:fb:26:1f:0a:4f:16:02:61:ec:de:77:0d: e5:0f:d7:71:63:96:b2:bb:15:c8:96:0e:0c:a9:39:50:30:63: ba:f6:35:d8:a0:68:e9:b6:15:07:cb:7d:4f:a9:b0:4b:0d:8e: be:23:ea:de:43:d4:0a:3f:da:e1:c9:46:94:d2:cc:2a:74:11: 5b:db:aa:5d:5d:07:94:2e:4c:0a:95:e6:65:86:42:e1:c7:b0: f8:26:63:29:53:67:23:5e:44:11:d6:e8:c8:e0:7c:21:36:77: 5b:04:21:ff:57:d2:ee:78:40:c4:48:36:22:b7:1c:7a:2b:6b: c0:30:58:a7:61:55:fa:ea:1e:ea:35:15:79:ce:ec:d9:d7:21: 7c:17:2d:09:1f:1d:53:b8:1a:1c:c7:5b:7a:86:d7:71:30:8b: 03:f8:7d:85:e5:eb:4a:37:fd:8c:a0:3b:b2:70:85:57:3d:e5: b6:76:5b:12:ea:bb:ab:73:a7:07:ce:8d:7c:41:4b:ed:76:3b: ea:a7:b1:a4:9d:6c:79:45:25:55:9b:ef:5d:4f:f6:8a:e9:d5: 45:66:d5:4a:c2:c9:68:8f:4b:01:aa:cf:9e:7a:95:45:f1:a8: 59:da:47:97 -----BEGIN CERTIFICATE----- MIIFXzCCBEegAwIBAgIUOJ25Pjs+dI9zCai31bGSsoBZrVMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTEyNEMzMUZDRkE0RTgyQzREMEY2RTA5QTMwQTA0QTU1 Qzk3NzhCRjAeFw0yNjAzMTMxOTMxNTdaFw0yNzAzMTIxOTM2NTdaMDMxMTAvBgNV BAMTKDI4QzE0MEE0NjMwNTM4NzYxMjM2MkUzNDBCODIzQ0M4QUZEREJCRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5rNCMkr84BnrSieRkkKcsvOPw 8XpkrnoVqrfZujHseXZQnT1p+fS2/h0pKEyJMeM/MkgeZwB3RcHLXtImdHsR/x1+ JXczhweDYrLeGYCzBC/mbU0fBPDDvkVzuiS/nz+3GYF59rKUXAl+3h8OvxU8n82T zAi+GbhWbyreB/47wlIh4FWszzTGorvdE93L16M6UCi2b8gDgbh2xGuvRbceQcoW mlmx4i3NjOTU6KmEzu3TBbNk6SCdNJ54QTXCSSLzAGBKV8fPmic2y9j2OfQ27+A8 2Yh+TzCWyfIkHG/93glg6p5a4mIt9knnmgEaFppK3vA28xJlw8oS50fcW6SRAgMB AAGjggJpMIICZTAdBgNVHQ4EFgQUKMFApGMFOHYSNi40C4I8yK/du+8wHwYDVR0j BBgwFoAUUSTDH8+k6CxND24JowoEpVyXeL8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvODFhNDQ1NjY0NThlNDU3OGI2N2VlZDMwNTNmODIwZjUvMS81MTI0QzMxRkNG QTRFODJDNEQwRjZFMDlBMzBBMDRBNTVDOTc3OEJGLmNybDCBngYIKwYBBQUHAQEE gZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5LzczYjhlYzAxLThiYTUtNDc5Zi1hMjI5LTBhYjcwZTQ4 MTViYi8wLzUxMjRDMzFGQ0ZBNEU4MkM0RDBGNkUwOUEzMEEwNEE1NUM5Nzc4QkYu Y2VyMIGsBggrBgEFBQcBCwSBnzCBnDCBmQYIKwYBBQUHMAuGgYxyc3luYzovL3Jw a2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRvcnkvODFhNDQ1NjY0NThlNDU3OGI2N2Vl ZDMwNTNmODIwZjUvMS8zMjYxMzA2MjNhMzQ2NTMwMzczYTM3MzAzMDMwM2EzYTJm MzMzNzJkMzQzODIwM2QzZTIwMzIzMDMzMzAzNjMyLnJvYTAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYDKgtOB3Aw DQYJKoZIhvcNAQELBQADggEBAJkTN11eGK4M2stA19ApZwlr8kkj0UgtVvsmHwpP FgJh7N53DeUP13FjlrK7FciWDgypOVAwY7r2NdigaOm2FQfLfU+psEsNjr4j6t5D 1Ao/2uHJRpTSzCp0EVvbql1dB5QuTAqV5mWGQuHHsPgmYylTZyNeRBHW6MjgfCE2 d1sEIf9X0u54QMRINiK3HHora8AwWKdhVfrqHuo1FXnO7NnXIXwXLQkfHVO4GhzH W3qG13EwiwP4fYXl60o3/YygO7JwhVc95bZ2WxLqu6tzpwfOjXxBS+12O+qnsaSd bHlFJVWb711P9orp1UVm1UrCyWiPSwGqz556lUXxqFnaR5c= -----END CERTIFICATE-----Generated at Thu Mar 26 17:41:55 2026 by rpki-client